tag:blogger.com,1999:blog-17491507848055300692018-03-06T17:10:38.017-08:00PHP WorldApril Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.comBlogger21125tag:blogger.com,1999:blog-1749150784805530069.post-61350855668491443432009-10-08T10:36:00.000-07:002009-10-08T10:37:26.470-07:00Zend ushers PHP onto cloud of cloudsBacked by Microsoft, IBM, and three other outfits beckoning developers into the sky, Zend Technologies has unleashed an open source API for fashioning PHP apps that float on multiple clouds.<br /><br />Zend calls it the Simple API for Cloud Application Services. The idea is to provide a single programming interface for file storage, document database, simple queue, and other application services offered by the likes of Amazon, Rackspace, and, yes, Microsoft.<br /><br />"This project allows developers to get all of the scalability and high-availability and other advantages of the cloud while maintaining portability," Wil Sinclair, the Zend man who oversees the project, tells The Reg.<br /><br />But the project is not be confused with fledgling meta cloud APIs from RedHat and Cloudkick. Whereas Zend and crew are targeting application services, RedHat's deltacloud and Cloudkick's libcloud aim for Amazon EC2 and other so-called infrastructure clouds offering up virtual server resources.<br /><br />The Simple API project was originated about six months ago by Zend, an outfit wonderfully obsessed with PHP tools. The API will be available in the open source Zend Framework project under the name "Zend Cloud." Zend says the interface can potentially be translated to other object-oriented web languages, but for the moment, it's a PHP project.<br /><br />"We wanted to make sure we served the PHP and Zend community as the IT industry moves into a more cloud-based infrastructure," Zend CEO Andi Gutmans tells The Reg. "In order to really encourage ISVs to really embrace the cloud - to build what we call cloud-native applications, applications built for the cloud, not just run on the cloud - we needed to make sure they had the right set of APIs to reach as broad an audience as possible."<br /><br />Zend's co-founding contributors include Microsoft, IBM, and Rackspace as well as two smaller cloud outfits, Nirvanix and GoGrid. Yes, Zend has approached Amazon about the project, but per usual, Jeff Bezos and company are keeping their distance.<br /><br />"We've had ongoing discussions with Amazon, and they haven't said 'yes' and they haven't said 'no' at this point," Sinclair says. "But we hope they join sometime down the road."<br /><br />Nonetheless, the project will rope in various Amazon services, with the community at large writing adapters for Amazon's public APIs. Zend and crew plan on building adapters that span various file storage services, including Amazon S3, Windows Azure blobs, Rackspace Cloud Files, and the Nirvanix Storage Delivery Network; document Storage services, including Windows Azure tables and Amazon SimpleDB; and simple queue services, including Amazon SQS and Windows Azure queues.<br /><br />"Amazon is such an important cloud vendor, we're going to make sure their services are part of the Simple API as well," Gutmans says.<br /><br />Yes, disparate services offer disparate tools. The API will only handle tasks shared by each service. "These services are actually very similar in a lot of ways," Sinclair says. "With something close to 80 per cent of the use cases for applications running on these services, you can just use the common functionality.<br /><br />"With storage services, for instance, the main thing you need is to be able to store something and get it later. You need to be able to copy things, another common feature we've added to the API. But there will be a lot of discussion about what is common and what isn't."<br /><br />In other words, the API will not target tools specific to individual vendors. Windows Azure table storage supports transactions, for instance, and Amazon's simpleDB doesn't. So you won't find transactions in the API. "We want applications to be portable between services," Sinclair says. "And we don't want to stifle innovation."<br /><br />And unlike RedHat's deltacloud, the project does not extend to Amazon EC2 and similar infrastructure services. "These projects [delta cloud and Simple API for Cloud Application Services] can be used together. There is no real overlap at this point," Sinclair says. "You can easily see a scenario where someone is using deltacloud and Simple Cloud API in the same project."<br /><br />Microsoft tells The Reg it's committed to building adapters for its Windows Azure storage services, while Rackspace and others have made similar commitments to fashion adapters for their own services. IBM is still mulling how the project will play into its sky-high services, but it envisions adopting the API natively.<br /><br />"This is the kick-off of an open source project," Dirk Nicol, IBM director of emerging technology tells us. "We'll see where the community takes the conversation, but we anticipate incorporating those APIs into our offerings and influencing those APIs."April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-60027426976487542192009-08-20T09:42:00.000-07:002009-08-20T09:43:50.720-07:00Microsoft Issues SQL Azure, CEP Platform PreviewsMicrosoft on Tuesday released technology previews of SQL Azure, the database for its Azure cloud infrastructure platform, and SQL Server StreamInsight, its entry in the CEP (complex event processing) arena.<br /><br />Also announced was a SQL Server driver that provides Azure support for PHP (hypertext preprocessor), a language popular among Web application developers. MSDN and Technet subscribers gained access to the previews Tuesday; they will be generally available Wednesday. <br /><br />SQL Azure Database is available at no charge until Azure's commercial launch in November, at which point it will be offered in two tiers. The Web edition will cost US$9.99 a month and allow up to 1GB of data, while the Business Edition will include up to 10GB and cost $99.99 per month, according to an official blog post. <br /><br />The software represents a subset of SQL Server 2008's capabilities, according to Forrester Research analyst James Kobielus.<br /><br />"This is a proof-of-concept that SQL Server can be ported to the cloud and support some advanced analytics that would be expensive if deployed on premises," Kobielus said.<br /><br />Meanwhile, SQL Server StreamInsight, which will compete with CEP technologies from the likes of Tibco and IBM, focuses on finding insights from real-time information. <br /><br />CEP software analyzes streams of transactions looking for certain patterns or correlations, subsequently triggering a response if required. For example, it is used by financial institutions for rapid-fire stock trading, and e-commerce sites for fraud detection.<br /><br />While the CEP market remains fairly small, observers expect it will grow quickly in coming years.<br /><br />StreamInsight will be shipping as part of SQL Server 2008 R2, which is expected to be available in the first half of next year, according to a blog post.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-55675363087852134282009-06-15T12:10:00.000-07:002009-06-15T12:11:10.120-07:00PHP Tutorial: IntroductionWelcome to the HTML Goodies PHP Tutorials! This series is a new series that is in development right now. This tutorial series is a little more advanced than our HTML tutorials. The assumption is made that you already have an understanding of HTML and basic web design. For this reason this is not a good starting point for the new designer, but is instead a place for one with a little experience to spread their wings and expand their design horizons. Check back here often to see the progress of the series. We'll have you writing PHP code very soon! The following sections are available now: <br />Your first page with PHP code <br /><br />A simple Order Form <br /><br />Processing the Order <br /><br />A Little about Variables <br /><br />Expressions and Operators <br /><br />Logic Flow <br /><br />Functions <br /><br />Passing Data To and From Functions <br /><br />More About Functions <br /><br />Using the File System <br /><br />A File Upload Form <br /><br />Error Handling <br /><br />Cookies <br /><br />SessionsApril Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-78600841347181614612009-05-28T12:09:00.000-07:002009-05-28T12:12:59.283-07:00How to Install PHP on WindowsWhy PHP?<br />PHP remains the most widespread and popular server-side programming language on the web. It is installed by most web hosts, has a simple learning curve, close ties with the MySQL database, and an excellent collection of libraries to cut your development time. PHP may not be perfect, but it should certainly be considered for your next web application. Both Yahoo and Facebook use it with great success.<br /><br />Why Install PHP Locally?<br />Installing PHP on your development PC allows you to safely create and test a web application without affecting the data or systems on your live website. This article describes PHP installation as a module within the Windows version of Apache 2.2. Mac and Linux users will probably have it installed already.<br /><br />All-in-One packages<br />There are some excellent all-in-one Windows distributions that contain Apache, PHP, MySQL and other applications in a single installation file, e.g. XAMPP (including a Mac version), WampServer and Web.Developer. There is nothing wrong with using these packages, although manually installing Apache and PHP will help you learn more about the system and its configuration options.<br /><br />The PHP Installer<br />Although an installer is available from php.net, I would recommend the manual installation if you already have a web server configured and running.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-8182235415101073162009-04-29T10:16:00.000-07:002009-04-29T10:17:53.236-07:00Heart Internet exclusive offer: “Buy one get one free” with SitePointWeb hosting provider Heart Internet (heartinternet.co.uk) has partnered with SitePoint (sitepoint.com) to offer their customers an exclusive ‘buy one get one free’ on SitePoint’s Web Development and Design books. <br /><br />Heart Internet, which specialises in providing a variety of hosting services for resellers, agencies, IT professionals and home users, is opening the exclusive offer to both new and existing customers. SitePoint’s entire library is included in the offer which covers all the major areas of web design and development such as HTML, CSS, PHP, MySQL, JavaScript and ASP.NET. <br /><br />Heart Internet co-founder Jonathan Brealey said “SitePoint is a great resource for beginners and professionals alike with books that cover every aspect of building a website. Being able to offer discounted pricing to our customers is a fantastic way to help them with their web development skills.” <br /><br />Since their launch in 1999 SitePoint has grown in to one of the world’s leading web design and development resources with 180,000 customers and books sold in over 180 countries. “Our books provide best practice guidance to all types of web developers, designers, marketers, and site owners” explained SitePoint co-founder, Matt Mickiewicz, “We are pleased to be able to offer Heart Internet’s customers this great deal and help them make the most of their websites.”<br /><br />For more information visit the website http://www.heartinternet.co.uk <br /><br />About Heart Internet: Heart Internet is the Uks fastest growing reseller and one of the leading domain registrars in the UK. Their products are based around the offering the latest hosting technology at competitive prices.<br /><br />About SitePoint: SitePoint specializes in publishing fun, practical, and easy-to-understand content for web professionals. Its popular online magazine, blogs, newsletters, and print books teach best practices to web developers and designers worldwide.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-79757468226669948622009-03-23T11:54:00.000-07:002009-03-23T11:55:23.062-07:00Microsoft opens Azure to PHP developersMicrosoft at the Mix09 conference last week revealed several moves intended to bolster its Windows Azure cloud computing platform, adding support for PHP application development and native code as well as full trust capabilities.<br /><br />"Windows Azure is metaphorically the operating system for the cloud," said Prashant Ketkar, director of product marketing for cloud infrastructure services at Microsoft, in an interview at the conference in Las Vegas.<br /><br />[Fast-changing platforms will challenge developers, read: " Developing cloud apps: What's different?" | And in other news from Mix09, Microsoft cited design updates as economic booster.]<br /><br />Specific improvements made this week include expanding beyond managed code to native code support; allowing 'full trust,' which is how most applications or services are written; and offering FastCGI support to allow PHP development.<br /><br />"Basically, the Windows Server team has done a ton of work with FastCGI that allows Windows Server to now support programming languages beyond just .Net and Visual Studio," Ketkar said. Through the FastCGI interface, developers can take existing PHP skills and PHP applications and services and run them on Azure.<br /><br />Developers might also be able to run other languages via FastCGI, said Ketkar. Microsoft, though, has done stress-testing for PHP but not for other languages. "There is no reason that Ruby won't work through that same FastCGI interface," he said.<br /><br />Microsoft's vision is to open up the platform to more languages, Ketkar said. Microsoft wants Azure to offer a "frictionless" development platform beyond just supporting .Net development, he said.<br /><br />With full trust capabilities, Microsoft is expanding Azure beyond the medium trust capabilities that it had had since its original launch at the Microsoft Professional Developers Conference in October 2008.<br /><br />Another Azure capability revealed this week was support for geo-location, in which developers can pick a geography where they want an application or service to run. This helps with latency issues, enabling, for example, a service to run in an East Coast data center if the user is on the East Coast, Ketkar said. Also, storage and compute elements could run in the same place.<br /><br />There are certain circumstances, though, when users would not want to run an application in the cloud, such as if there were specific compliance issues or control over physical assets was needed, Ketkar said.<br /><br />Regarding the outage Azure recently suffered, Ketkar said Microsoft was learning from the experience, and he noted the technology still is in a pre-release, community technology preview format.<br /><br />Azure will be commercially launched by the end of this calendar year. A business model, including prices and service level agreement rules, will be announced this summer.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-59813406715982012072009-02-26T12:07:00.000-08:002009-02-26T12:08:11.982-08:00Database Software & Management News – Access, DB2, SQL & OracleIn this tutorial we will build an online bookmark system. This will be used to create a database for storing all our URL's and their descriptions. There are many commercial and non-commercial applications that offer almost the exact functionality that we will create in our application; the difference is that we have full control over our application, allowing us to tweak it to suit our needs. <br /><br />The article continues at http://www.webreference.com/programming/php/user_personalization/index.htmlApril Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-29657536771913948592009-02-01T09:49:00.000-08:002009-02-01T09:51:03.608-08:00Eclipse Upgrades PHP Development ToolsThe Eclipse Foundation, a consortium of developers supporting the open-source Eclipse development platform, announces a major upgrade to the Eclipse PHP Development Tools project, PDT 2.0.<br /><br /><br />The Eclipse Foundation, a consortium of developers supporting the open-source Eclipse development platform, has announced a major upgrade to the Eclipse PHP Development Tools project, PDT 2.0.<br /><br />As a leading contributor to the PDT effort, PHP specialist Zend Technologies is pushing PHP as a key element of the Eclipse platform and as a language used for more mainstream development. <br /><br />"Release 2.0 demonstrates our continued commitment to the Eclipse community," said Andi Gutmans, co-founder and senior vice president of R&D and alliances at Zend Technologies. "PDT is not only the premier open-source PHP development tool, but is also the basis for Zend's commercial IDE [integrated development environment] for PHP, Zend Studio for Eclipse. Additionally, in order to further align with Eclipse, PDT will become part of the Eclipse Galileo simultaneous release." <br /><br />Eclipse Foundation officials said the focus of the PDT 2.0 release is to add support for the object-oriented programming features of PHP and to improve the overall user experience of the PDT environment. PDT provides all the basic code editing capabilities developers need to get started developing PHP applications.<br /><br />Gutmans said he believes the enhancements in PDT 2.0 make PDT a compelling choice for developers looking to build simple PHP applications. Eclipse officials said PDT 2.0 also is ideal for Java programmers who want to write PHP code by providing them with an environment similar to the Eclipse JDT (Java Development Tools) they are already familiar with.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-92222383076431794372009-01-21T07:36:00.000-08:002009-01-21T07:39:14.306-08:00Eclipse PHP upgrade tackles object-oriented programmingThe Eclipse Foundation is releasing on Wednesday version 2.0 of its Eclipse PDT (PHP Development Tools) project, which adds object-oriented programming and usability features. <br /><br />PDT is an open-source development tool offering basic code editing capabilities for PHP applications. PHP is a server-side scripting language popular in Web development. <br /><br />"This project [with the earlier 1.0 release] has seen wide adoption, [with] over 1 million downloads to date," said Roy Ganor, project lead for both PDT and the Zend Studio for Eclipse platform at PHP tool maker Zend Technologies. <br /><br />[ For more on PHP and other scripting languages, see "Scripting languages spark new programming era." ]<br /><br />Object-oriented features in version 2.0 include a type hierarchy view for faster code navigation; type and method navigation for searching of code based on type information, and override indicators to visually tag PHP methods that have been overridden. <br /><br />"Object oriented [programming] in general gives you the ability to have much more modular code," Ganor noted.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-22612315224476448452008-12-28T01:27:00.001-08:002008-12-28T01:27:56.607-08:00What's New in PHP v5.3IBM delves into what's new in PHP 5.3: Part-1 shows you the changes to the object-orientated capabilities, and Part-2 shows you the exciting new possibilities with real closures and lambda functions. ["Read more" for Kroc's personal commentary]<br /><br /><br />PHP is a language I dislike, but am good at. It is a language that, as long as you stay away from certain parts of it, you'll be safe and it works well. It can even be beautiful in some rare instances. <br /><br />The very hackish nature of PHP does allow for rapid development, but it's eclectic design makes it a minefield for anybody who isn't personally motivated and regimented about clean, safe and sensible coding. <br /><br />The new improvements in 5.3 only continue the junk-shop eccentricity of the language. Great when you know you want these things and how to use them, a pain if it's all new to you. <br /><br />PHP can claim to be "Object Orientated" until the cows come home, but the fact of the matter is PHP's native objects and commands are still painfully procedural, trapped in a stasis field of backwards-compatibility. <br /><br />Whilst a new high-speed fixed array is nice, the project is trying to solve it's problems by bundling a library rather than entering this stuff into the core syntax. I honestly don't want to use a bolted-on library and to have to instantiate classes for something I would much rather be able to do properly inline with the native syntax array (...). Having to use a library makes for syntaxically unpretty and elongated code, the spawning of more and more one-shot classes and variables until your code starts looking like VB6 meta-programming.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-67531541433772591972008-10-18T10:21:00.000-07:002008-10-18T10:22:49.135-07:00ResellersPanel Launches a Free PHP Script Installation WebsiteElefanteInstaller.com will help inexperienced webmasters build a personal blog, a community forum or a photo gallery quickly and easily, but will also assist web hosting resellers in presenting their online offers more successfully. <br /><br />ResellersPanel, the synonym of free reseller web hosting, announces that it has recently launched elefanteinstaller.com – a new website, which offers detailed descriptions, demo versions and the free installation of more than 30 open source PHP scripts, among them phpBB2, WordPress, Joomla, Mambo, osCommerce, Drupal, Coppermine and many others, grouped in the following categories: Blog, Forum, CMS, E-Commerce, Photo Gallery, Wiki, Classified Ads, Calendar, Guestbook, Project Management, Client Management, Ad Management, Customer Support. The one-click automated script installation available through the new Elefante Installer website will help users avoid the difficulties related to the otherwise quite complicated PHP script installation process, which requires at least some basic knowledge of MySQL, phpMyAdmin, the Apache web server, etc., on their part.<br /><br />Typing the elefanteinstaller.com URL into a web browser will take the visitors to a website where they can see detailed explanations of the functionalities of the various PHP scripts and learn how each script is working in real website environment through the admin and client demo accounts provided. However, if a given reseller’s customer opens elefanteinstaller.com through the respective link placed on that reseller’s web store, the Elefante website will also display the hosting offers of the very reseller whose store the client has been referred from. In this case the name of that reseller’s store will appear in the URL of the Elefante website immediately after the domain name itself, which will increase its brand awareness, and elefanteinstaller.com will in fact serve as an additional reseller web store.<br /><br />Each web hosting plan offered on the reseller web stores and, respectively, on the new Elefante website, has been optimized to accommodate websites based on the various scripts elefanteinstaller.com is offering, and comes with a free website builder, free domain name registration and PHP script installation options, and a set of free marketing tools for boosting website popularity. Moreover, all users can download for free any of the Joomla templates and WordPress themes currently on offer, and create dynamic, content-rich, professionally-looking, multi-language personal and business websites, online communities, blogs or e-commerce portals quickly and easily.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-87904049520762473482008-08-31T06:20:00.000-07:002008-08-31T06:21:40.301-07:00Make It Easy With PHP WebsiteThis is because you need an array of tools to get the job completed; then maintaining them can be a real headache if you lack on the expertise on technical sides. And finally you need to make sure that it has been built right; otherwise you have to begin from the scratch once again. <br /><br />Sounds an exorbitant task---isn’t it? Not exactly, if you know the right tricks and the trick lies in creating a PHP supported website. <br /><br />Let’s explain in details why PHP website should be your option. <br /><br />Pick a sneak into the cyber world and you will find the websites that are making big are all dynamic in character. As opposed to the ordinary websites that flash up just the plain pages on request of the browsers, a PHP website allows many more functions. <br /><br />PHP is actually a server-side scripting language that can play the role of ‘plugin’ for your web server. A PHP how to clean upholstery website acts smarter by retrieving from a database the latest information, which then will be added to the web page and finally this updated information will reach to the browser that requested it. <br /><br />Retrieving information from database is a basic characteristic feature of PHP and to maintain the database you need a relational database management system, or RDBMS like MSQL. This software package is particularly good at organization and upholstery cleaning milwaukee of large amounts of information. It is also compatible with other databases like MySQL, Informix, Oracle and many others. Now access to database for information becomes easier when your website use PHP scripting languages. <br /><br />PHP as an open source code runs on just about every platform including most UNIX, Macs and Windows versions. Being a server side technology, it doesn’t require the user to have any special browser or plug-ins for PHP execution.<br /><br />Above all, PHP websites are fast, secure and stable. PHP as a scripting language can be easily integrated with various software programs. <br /><br />So, if you are planning to create dynamic web pages, you must consider PHP websites. This will make possible all sorts of interaction with the users who in turn contribute to customized information to your site.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-86004685251958164112008-08-03T11:22:00.000-07:002008-08-03T11:24:00.684-07:00Microsoft makes pledges to support Apache, PHP, RubyI was surprised to hear of Microsoft’s decision to become a platinum sponsor of the Apache Software Foundation, announced at OSCON late last week.<br /><br />It wasn’t the only announcement. The Redmond, Wash based Windows giant also shared that it would make a contribution to the PHP community’s ADOdb project — which will expand support for Microsoft SQL Server. This will enable customers to deploy more PHP applications on Microsoft’s database. <br /> <br />What else? Microsoft pledged to extend its Open Specification promise to open up more than 150 additional protocols in Windows Server, the .NET framework and other products.<br /><br />Microsoft also announced a series of IronRuby updates. These include plans to ship the Ruby libraries implemented in the Ruby programming language with the IronRuby distribution and participate in the RubySpec project. <br /><br />It’s not clear if Microsoft would have taken these steps if chairman and co-founder Bill Gates was still around. Nevertheless, there’s no doubt that Microsoft’s increasing participation in such projects is a big win for the open source community and for its customers. <br /><br />Paula Rooney is a Boston-based writer who has followed the tech industry for almost two decades. See her full profile and disclosure of her industry affiliations.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-84127529695120463622008-07-07T22:11:00.001-07:002008-07-07T22:11:42.910-07:00Research and Markets: PHP and MySQL: Create-Modify-ReuseResearch and Markets (http://www.researchandmarkets.com/research/c68e0e/php_and_mysql_cre) has announced the addition of the "PHP and MySQL: Create-Modify-Reuse" report to their offering. <br /><br />- Step-by-step instructions walk readers through real-world applications <br /><br />- Packed with ready-to-use projects for PHP and MySQL, this book guides readers through several real-world projects that are complete, tested, and ready to be implemented, so that readers can learn by doing <br /><br />- Clearly explains to readers all aspects of design, such as portability, design flow, and integration, and shows them how to properly secure their applications for real-world implementation <br /><br />- Authored by a PHP expert who is in tune with common tasks and the various problems faced by developers in everyday circumstances <br /><br />- Application topics include user management, Web forums, and an image gallery <br /><br />- Although PHP and MySQL can each be used independently, when they are used together, they open up dynamic options for Web site development <br /><br />Key Topics Covered: <br /><br />- User Registration. <br /><br />- Community Forum. <br /><br />- Mailing List. <br /><br />- Search Engine. <br /><br />- Personal Calendar. <br /><br />- Ajax File Manager. <br /><br />- Online Photo Album. <br /><br />- Shopping Cart.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-20549265707725979092008-07-07T22:10:00.000-07:002008-07-07T22:11:05.689-07:00fuzzylime (cms) rss.php Local File Inclusion VulnerabilityAms has discovered a vulnerability in fuzzylime, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.<br /><br />Input passed to the "p" parameter in rss.php is not properly verified before being used to include files. This can be exploited to include arbitrary files from local resources.<br /><br />Successful exploitation requires that "magic_quotes_gpc" is disabled.<br /><br />NOTE: The vulnerability can be exploited to execute arbitrary PHP code by including the code/content.php script.<br /><br />The vulnerability is confirmed in version 3.01a. Other versions may also be affected.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-64932746297681413382008-06-14T08:55:00.001-07:002008-06-14T08:55:57.272-07:00Small, awkward and looking for love: Delphi for PHP 2.0The intent behind Delphi for PHP from CodeGear, last month acquired by Embarcadero Technologies, is clear: to provide an integrated development environment for PHP that matches the speed of development regular Delphi offers for Windows applications.<br /><br />First released in February 2007, the initial version fell far short of the goal, being buggy and under-documented. I've had a chance to get to grips with Version 2.0, and while CodeGear has added some refinements there remains a ways to go.<br /><br />Delphi for PHP is based on a third-party product, qstudio from Qadram software, though it now appears to be its only incarnation, and features a Windows-only IDE along with a PHP 5 class library called VCL for PHP.<br /><br />This component library is an open source project on SourceForge though it appears to have little use outside Delphi for PHP. The link with CodeGear's better-known Delphi for Windows is tenuous: it does not share the same IDE, and the language itself is of course PHP, and nothing to do with Delphi's Pascal. That said, the IDE is superficially similar, and existing Delphi users are meant to feel at home.<br /><br />The Delphi for PHP installer sets up a complete PHP test environment, including a local Apache 2 and the Nusphere debug listener. You can use it as a basic PHP IDE with the ability to set breakpoints and step through code. The editor in version 2.0 is improved, with code folding, syntax checking and automatic source formatting. The IDE also offers a profiler that times each line of code. That said, the real value of the product is in rapid development with the visual component library (VCL) .<br /><br /> <br />Full PHP environment, tenuous links to the better-known Delphi<br />You can drag components onto a visual form designer, and set properties and handle events through an object inspector. There are also database components, including Database, Datasource and Query, which support data-aware controls such as a DBGrid as well as standard items like edit controls, labels and checkboxes. New in version 2.0, the Xinha HTML editor is also included, enabling instant HTML editing for users.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-55950616157895783992008-06-14T08:53:00.000-07:002008-06-14T08:54:18.638-07:00FOG Forum "index.php" Local File Inclusion VulnerabilitiesDescription:<br />CWH Underground has discovered two vulnerabilities in FOG Forum, which can be exploited by malicious people to disclose sensitive information.<br /><br />Input passed to the "fog_lang" and "fog_skin" parameters in index.php is not properly verified before being used to include files. This can be exploited to include arbitrary files from local resources via directory traversal attacks and URL-encoded NULL bytes.<br /><br />The vulnerabilities are confirmed in version 0.8.1. Other versions may also be affected.<br /><br />Solution:<br />Edit the source code to ensure that input is properly verified.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-17680545253847969372008-05-08T23:23:00.000-07:002008-12-08T13:56:47.466-08:00PHP DC conference 2008<a href="http://4.bp.blogspot.com/_Irqy8wvSt68/SCPuH9c3DeI/AAAAAAAAAB4/Adk0OtXiIhs/s1600-h/dcphpconference.2008.png"><img id="BLOGGER_PHOTO_ID_5198260215437790690" style="FLOAT: right; MARGIN: 0px 0px 10px 10px; CURSOR: hand" alt="" src="http://4.bp.blogspot.com/_Irqy8wvSt68/SCPuH9c3DeI/AAAAAAAAAB4/Adk0OtXiIhs/s320/dcphpconference.2008.png" border="0" /></a> The DC PHP Developers Group recently announced Kshemendra Paul as a featured keynote speaker at the DC PHP Conference &amp; Expo, June 2-4, 2008, at George Washington University in Washington, DC. Paul, chief architect for the Office of Management and Budget Executive Office of the President, will be presenting on "Federal E-Government and Enterprise Architecture Updates."<br />Join hundreds of PHP practitioners, business managers, and government officials from around the world in the exchange of ideas and solutions for building a better web application infrastructure. The DC PHP conference will include tracks pertaining to business cases, best practices, the art of PHP, PHP applications, PHP in the enterprise, and Open Source. The full speaker schedule will be announced shortly.<br />For more information about DC PHP Conference &amp; Expo 2008 and to register, please visit <a href="http://www.dcphpconference.com/">http://www.dcphpconference.com/</a>. Early discounted registration rates affective until April 15, 2008April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-42981258188159020292008-05-08T23:22:00.000-07:002008-05-08T23:23:23.226-07:00Call for speakers for Forum PHP Paris 2008The AFUP, Association Française des Utilisateurs de PHP, is proud to announce the upcoming conference "Forum PHP 2008".<br />For this unique event in France, we are looking for the best French speaking experts, who want to share their know-how and enthusiasm. This two day conference features one technical day, with the most advanced PHP techniques and a business day, with case studies and examples of successful projects.<br /><br />How to manage a PHP project (tools, methods, ...)<br /><br />Insure code quality<br /><br />Internet and legal issues (intellectual property, ...)<br /><br />Build a business around<br /><br />PHP scalibility<br /><br />Connect services(web services)<br /><br />Rich User Interfaces (technology choice, implementation, ...)April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-8320416690721386582008-05-08T23:21:00.002-07:002008-05-08T23:22:11.681-07:00PHP 5.2.6 ReleasedThe PHP development team would like to announce the immediateavailability of PHP 5.2.6. This release focuses on improving the stability ofthe PHP 5.2.x branch with over 120 bug fixes, several of which are security related.All users of PHP are encouraged to upgrade to this release.<br />Further details about the PHP 5.2.6 release can be found in the release announcement for 5.2.6, the full list of changes is available in the ChangeLog for PHP 5.April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0tag:blogger.com,1999:blog-1749150784805530069.post-10267821399450584722008-05-08T23:21:00.001-07:002008-05-08T23:21:37.364-07:00Security Enhancements and Fixes in PHP 5.2.6:Fixed possible stack buffer overflow in the FastCGI SAPI identified by Andrei Nigmatulin.<br /><br />Fixed integer overflow in printf() identified by Maksymilian Aciemowicz.<br /><br />Fixed security issue detailed in CVE-2008-0599 identified by Ryan Permeh.<br /><br />Fixed a safe_mode bypass in cURL identified by Maksymilian Arciemowicz.<br /><br />Properly address incomplete multibyte chars inside escapeshellcmd() identified by Stefan Esser.<br /><br />Upgraded bundled PCRE to version 7.6April Foolhttp://www.blogger.com/profile/07585653470176301857noreply@blogger.com0